# protect wpconfig.php
<files wp-config.php>
order allow,deny
deny from all
</files>

The <files> tag is necessary and this post is placed here as some WordPress comment systems strip them out rendering the code meaningless.

the .htaccess file itself can be similarly protected.

Related posts:

1. How to Quickly Block an IP Address from your Website

   Use .htaccess!!! *Ebook Admin/Secure Apache I’ve mentioned it before – and the technique I used to use a lot with...

2. WordPress Stats Problem – fixed

   I’ve kept up with all the upgrades etc for WordPress and all the add-ons I use. But two days ago...

3. Blank Pages Trouble with new WordPress install

   Not only have I had a bit of trouble moving to a new IP address – but this post is...

4. Pligg Comment Spam

   Introduction An unfortunate consequence of posting stuff online is that you enable your ‘work’, ‘your words of wisdom’, your ‘copyright’...

5. Proactive Refferal Spam Blocking

   Introduction to the Problem and .htaccess Usage I’ve had a few weird hits over time from “normal” websites containing “abnormal”...